[DNSOP] [Technical Errata Reported] RFC8624 (6227)
RFC Errata System <rfc-editor@rfc-editor.org> Fri, 10 July 2020 08:32 UTC
Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 294E23A0EE3 for <dnsop@ietfa.amsl.com>; Fri, 10 Jul 2020 01:32:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id otNHxEmKaPTC for <dnsop@ietfa.amsl.com>; Fri, 10 Jul 2020 01:32:21 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org [4.31.198.49]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D5D4A3A0EE2 for <dnsop@ietf.org>; Fri, 10 Jul 2020 01:32:21 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id 3ED31F4071F; Fri, 10 Jul 2020 01:31:52 -0700 (PDT)
To: pwouters@redhat.com, ondrej@isc.org, warren@kumari.net, rwilton@cisco.com, benno@NLnetLabs.nl, suzworldwide@gmail.com, tjw.ietf@gmail.com
X-PHP-Originating-Script: 30:errata_mail_lib.php
From: RFC Errata System <rfc-editor@rfc-editor.org>
Cc: mats.dufberg@internetstiftelsen.se, dnsop@ietf.org, rfc-editor@rfc-editor.org
Content-Type: text/plain; charset="UTF-8"
Message-Id: <20200710083152.3ED31F4071F@rfc-editor.org>
Date: Fri, 10 Jul 2020 01:31:52 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/GdpzvW7nqQ20BkKAchg74Wm398M>
Subject: [DNSOP] [Technical Errata Reported] RFC8624 (6227)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Jul 2020 08:32:23 -0000
The following errata report has been submitted for RFC8624, "Algorithm Implementation Requirements and Usage Guidance for DNSSEC". -------------------------------------- You may review the report below and at: https://www.rfc-editor.org/errata/eid6227 -------------------------------------- Type: Technical Reported by: Mats Dufberg <mats.dufberg@internetstiftelsen.se> Section: 6 Original Text ------------- This document has no IANA actions. Corrected Text -------------- This document updates the IANA registry "Delegation Signer (DS) Resource Record (RR) Type Digest Algorithms". The registry has been updated by the following table from section 3.3: +--------+-----------------+-------------------+-------------------+ | Number | Mnemonics | DNSSEC Delegation | DNSSEC Validation | +--------+-----------------+-------------------+-------------------+ | 0 | NULL (CDS only) | MUST NOT [*] | MUST NOT [*] | | 1 | SHA-1 | MUST NOT | MUST | | 2 | SHA-256 | MUST | MUST | | 3 | GOST R 34.11-94 | MUST NOT | MAY | | 4 | SHA-384 | MAY | RECOMMENDED | +--------+-----------------+-------------------+-------------------+ [*] - This is a special type of CDS record signaling removal of DS at the parent in [RFC8078]. This document updates the IANA registry "DNS Security Algorithm Numbers". The registry has been updated by the following table from section 3.1: +--------+--------------------+-----------------+-------------------+ | Number | Mnemonics | DNSSEC Signing | DNSSEC Validation | +--------+--------------------+-----------------+-------------------+ | 1 | RSAMD5 | MUST NOT | MUST NOT | | 3 | DSA | MUST NOT | MUST NOT | | 5 | RSASHA1 | NOT RECOMMENDED | MUST | | 6 | DSA-NSEC3-SHA1 | MUST NOT | MUST NOT | | 7 | RSASHA1-NSEC3-SHA1 | NOT RECOMMENDED | MUST | | 8 | RSASHA256 | MUST | MUST | | 10 | RSASHA512 | NOT RECOMMENDED | MUST | | 12 | ECC-GOST | MUST NOT | MAY | | 13 | ECDSAP256SHA256 | MUST | MUST | | 14 | ECDSAP384SHA384 | MAY | RECOMMENDED | | 15 | ED25519 | RECOMMENDED | RECOMMENDED | | 16 | ED448 | MAY | RECOMMENDED | +--------+--------------------+-----------------+-------------------+ Notes ----- The document clearly has the intention to update the IANA registers, which is also stated in the document, but not in section 6 ("IANA Considerations"). Instructions: ------------- This erratum is currently posted as "Reported". If necessary, please use "Reply All" to discuss whether it should be verified or rejected. When a decision is reached, the verifying party can log in to change the status and edit the report, if necessary. -------------------------------------- RFC8624 (draft-ietf-dnsop-algorithm-update-10) -------------------------------------- Title : Algorithm Implementation Requirements and Usage Guidance for DNSSEC Publication Date : June 2019 Author(s) : P. Wouters, O. Sury Category : PROPOSED STANDARD Source : Domain Name System Operations Area : Operations and Management Stream : IETF Verifying Party : IESG
- Re: [DNSOP] [Ext] [Technical Errata Reported] RFC… Warren Kumari
- [DNSOP] [Technical Errata Reported] RFC8624 (6227) RFC Errata System
- Re: [DNSOP] [Technical Errata Reported] RFC8624 (… Paul Wouters
- Re: [DNSOP] [Ext] [Technical Errata Reported] RFC… Paul Hoffman